new-tag
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses shell commands for Git operations and build processes.\n
- Evidence:
SKILL.mddefines a workflow usinggit status,git tag,git commit,git push, andpnpm build.\n- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection by acting on data from repository files.\n - Ingestion points: Workflow in
SKILL.mdinvolves inspecting.github/workflows/, package manifests, and release scripts.\n - Boundary markers: The skill does not implement delimiters or safety instructions when processing file content.\n
- Capability inventory: The skill can push to remote repositories and execute build scripts via
pnpm.\n - Sanitization: No sanitization or validation of the repository's configuration files is performed.
Audit Metadata